Malicious code in centurylink (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d96a2f3ad371aca3dc5bd6bf227819ee63ad00b7b1283b8280dd49497d8f8590 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8121 Malicious code in centurylink (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d96a2f3ad371aca3dc5bd6bf227819ee63ad00b7b1283b8280dd49497d8f8590 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Necurs Botnet Evolves to Hide in the Shadows, with New Payloads

Necurs, the prolific and globally dispersed spam and malware distribution botnet, has been spotted using a fresh hiding technique to avoid detection while quietly adding more bots to its web. According to research from Black Lotus Labs, which is telecom and ISP provider CenturyLink’s network...

364 inmates hacked prison tablets to steal almost $225,000

By Waqas Hundreds of inmates hacked the system and transferred almost $225,000 in their accounts. Inmates at Idaho Department of Correction are provided with computer tablets manufactured by a Florida based company JPay. These tablets are powered by communications and data services from...

Actiontec C1000A Modem Backdoor Account

Exploit Title: Actiontec C1000A backdoor account Google Dork: NA Date: 11/04/2017 Exploit Author: Joseph McDonagh Vendor Homepage: https://actiontecsupport.zendesk.com/hc/en-us Software Link: N/A Hardware Version: Firmware CAC003-31.30L.86 Tested on: Linux CVE : NA The Actiontec C1000A Modem...

Actiontec C1000A Modem - Backdoor Account Vulnerability

Exploit for hardware platform in category remote exploits Exploit Title: Actiontec C1000A backdoor account Google Dork: NA Date: 11/04/2017 Exploit Author: Joseph McDonagh Vendor Homepage: https://actiontecsupport.zendesk.com/hc/en-us Software Link: N/A Hardware Version: Firmware CAC003-31.30L.86...

Actiontec C1000A Modem - Backdoor Account

Actiontec C1000A Modem - Backdoor Account Exploit Title: Actiontec C1000A backdoor account Google Dork: NA Date: 11/04/2017 Exploit Author: Joseph McDonagh Vendor Homepage: https://actiontecsupport.zendesk.com/hc/en-us Software Link: N/A Hardware Version: Firmware CAC003-31.30L.86 Tested on: Linu...

ZyXEL PK5001Z Modem - Backdoor Account Vulnerability

Exploit for hardware platform in category web applications Exploit Title: ZyXEL PK5001Z Modem - CenturyLink Hardcoded admin and root Telnet Password. Exploit Author: Matthew Sheimo Vendor Homepage: https://www.zyxel.com/ Software Link: n/a Version: PK5001Z 2.6.20.19 Tested on: Linux About: ZyXEL...

promotions.centurylink.com XSS vulnerability

Vulnerable URL: http://promotions.centurylink.com/assets/popups/ratings-reviews.html?prod=RP01009696'-alert/OPENBUGBOUNTY/-' Details: Description| Value ---|--- Patched:| Yes, at 15.01.2018 Latest check for patch:| 15.01.2018 18:12 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

CenturyLink ZyXEL PK5001Z Router - Root Remote Code Execution

/ PK5001Z CenturyLink Router/Modem remote root exploit / / oxagast / Marshall Whittaker / / marshall@likon:/Code/pk5001zpwn: gcc pk5001z00pin.c -o pk5001z00pin / / marshall@likon:/Code/pk5001zpwn: ./pk5001z00pin / / PK5001Z CenturyLink Router remote root 0day / / Enjoy! / / --oxagast / /...

CenturyLink ZyXEL PK5001Z Router - Root Remote Code Execution

CenturyLink ZyXEL PK5001Z Router - Root Remote Code Execution / PK5001Z CenturyLink Router/Modem remote root exploit / / oxagast / Marshall Whittaker / / marshall@likon:/Code/pk5001zpwn: gcc pk5001z00pin.c -o pk5001z00pin / / marshall@likon:/Code/pk5001zpwn: ./pk5001z00pin / / PK5001Z CenturyLink...

selfservice.centurylink.com XSS vulnerability

Vulnerable URL: https://selfservice.centurylink.com/formprocessor/optout.do?optout=%22%27%2D%2D%21 Details: Description| Value ---|--- Patched:| Yes, at 26.09.2017 Latest check for patch:| 26.09.2017 05:23 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown ...

feedback.centurylink.net XSS vulnerability

Vulnerable URL: http://feedback.centurylink.net/opinion.php?currenturl="%3E%3C/input%3E%3Csvg/onload=alert'OPENBUGBOUNTY'%3E// Details: Description| Value ---|--- Patched:| Yes, at 13.03.2017 Latest check for patch:| 13.03.2017 23:12 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

promotions.centurylink.com XSS vulnerability

Vulnerable URL: http://promotions.centurylink.com/assets/popups/ratings-reviews.html?prod=RP01009696'-alert/OPENBUGBOUNTY/-' Details: Description| Value ---|--- Patched:| Yes, at 08.12.2016 Latest check for patch:| 08.12.2016 05:52 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...

selfservice.centurylink.com XSS vulnerability

Vulnerable URL: https://selfservice.centurylink.com/ticketing/residential/residentialAuthorizeUser.do Details: Description| Value ---|--- Patched:| Yes, at 19.09.2016 Latest check for patch:| 19.09.2016 10:29 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unkno...

jobs.centurylink.com XSS vulnerability

Vulnerable URL: https://jobs.centurylink.com/search/talentcommunity/subscribe/?slp=/talentcommunity/profile/%27-prompt%28%27OPENBUGBOUNTY%27%29-%27 Details: Description| Value ---|--- Patched:| Yes, at 18.08.2016 Latest check for patch:| 18.08.2016 11:03 GMT Vulnerability type:| XSS Vulnerability...

selfservice.centurylink.com XSS vulnerability

Vulnerable URL: https://selfservice.centurylink.com/ticketing/residential/authorizeUserForTicketLookup.do Details: Description| Value ---|--- Patched:| Yes, at 12.12.2016 Latest check for patch:| 12.12.2016 23:20 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

channelalliance.centurylink.com XSS vulnerability

Vulnerable URL: https://channelalliance.centurylink.com/portal/system/index.jsp?epi-content=FEEDBACK--%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888,%2083,%2083,%2080,%2079,%2083,%2069,%2068%29%29%3C/SCRIPT%3E Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for...

Obama Expands Surveillance to Critical Infrastructure

A little-known policy through which the Departments of Justice, Defense, and Homeland Security offered prosecutorial immunity to companies that helped the U.S. military monitor Internet traffic on the private networks of defense contractors has reportedly been expanded by Executive Order to inclu...